| Vulnerability Name: | CVE-2022-34312 (CCN-229447) | ||||||||||||
| Assigned: | 2022-10-31 | ||||||||||||
| Published: | 2022-10-31 | ||||||||||||
| Updated: | 2022-11-16 | ||||||||||||
| Summary: | IBM CICS TX 11.1 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 229447. | ||||||||||||
| CVSS v3 Severity: | 3.3 Low (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N) 2.9 Low (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
3.5 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
| ||||||||||||
| CVSS v2 Severity: | 2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
| ||||||||||||
| Vulnerability Type: | CWE-922 | ||||||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||||||
| References: | Source: MITRE Type: CNA CVE-2022-34312 Source: MISC Type: VDB Entry, Vendor Advisory https://exchange.xforce.ibmcloud.com/vulnerabilities/229447 Source: XF Type: UNKNOWN ibm-cics-cve202234312-info-disc(229447) Source: CCN Type: IBM Security Bulletin 6833150 (CICS TX Standard) IBM CICS TX Standard is vulnerable to allowing web pages to be stored locally which can then be accessed by other users on the system (CVE-2022-34312). Source: MISC Type: Patch, Vendor Advisory https://www.ibm.com/support/pages/node/6833150 Source: CCN Type: IBM Security Bulletin 6833156 (CICS TX Advanced) IBM CICS TX Advanced is vulnerable to allowing web pages to be stored locally which can then be read by other users on the system (CVE-2022-34312). Source: MISC Type: Patch, Vendor Advisory https://www.ibm.com/support/pages/node/6833156 | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||
| BACK | |||||||||||||